HTTP Headers Analysis for https://api-v2.returnless.com

Detected Technologies from Headers

See all in URL Inspect 3

AWS Active incidents

AWS API Gateway

AWS CloudFront

HTTP Security Headers

Status

Strict-Transport-Security

Good

max-age=31536000; includeSubDomains

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Excellent

DENY

X-Content-Type-Options

Good

nosniff

Referrer-Policy

Good

strict-origin-when-cross-origin

Permissions-Policy

Missing

Not configured

Recommendations

• Consider adding 'preload' to HSTS for maximum security
• Add Content-Security-Policy header to prevent XSS attacks
• Consider adding Permissions-Policy to control browser features

Performance Headers

Connection

Performance

close

Vary

Performance

Origin

connection: close
vary: Origin

Caching Headers

Cache-Control

Caching

no-cache, private

cache-control: no-cache, private

Content Headers

Content-Length

Content

118

Content-Type

Content

application/json

content-length: 118
content-type: application/json

Server Headers

No server headers found

CORS Headers

No CORS headers found

Cookies Headers

No cookies headers found

Other Headers

Date

Other

Mon, 11 May 2026 21:32:05 GMT

Request-Id

Other

1a764e4b-b5b0-4347-8690-4a2dc59b76a2

Via

Other

1.1 a1ec4a9de0c6900e92b419e90a84dd82.cloudfront.net (CloudFront)

X-Amz-Apigw-Id

Other

dOChcFoJliAEcnA=

X-Amz-Cf-Id

Other

uiYficUwqbusTOHRI2EHICghM7sJMRfoD1Oa-jsU3U6JjRohroRwTQ==

X-Amz-Cf-Pop

Other

IAD61-P11

X-Amzn-Remapped-Date

Other

Mon, 11 May 2026 21:32:05 GMT

X-Amzn-Requestid

Other

0fee7006-a207-43cf-a8ff-b9b0c35d11fb

X-Amzn-Trace-Id

Other

Root=1-6a024ad5-5751928613975fd94526fd27;Parent=553a7e8e1a11991a;Sampled=0;Lineage=1:640fac8a:0

X-Cache

Other

Miss from cloudfront

X-Ratelimit-Limit

Other

1000

X-Ratelimit-Remaining

Other

999

X-Ratelimit-Reset

Other

1778535185

X-Returnless-Version

Other

2023-01

date: Mon, 11 May 2026 21:32:05 GMT
request-id: 1a764e4b-b5b0-4347-8690-4a2dc59b76a2
via: 1.1 a1ec4a9de0c6900e92b419e90a84dd82.cloudfront.net (CloudFront)
x-amz-apigw-id: dOChcFoJliAEcnA=
x-amz-cf-id: uiYficUwqbusTOHRI2EHICghM7sJMRfoD1Oa-jsU3U6JjRohroRwTQ==
x-amz-cf-pop: IAD61-P11
x-amzn-remapped-date: Mon, 11 May 2026 21:32:05 GMT
x-amzn-requestid: 0fee7006-a207-43cf-a8ff-b9b0c35d11fb
x-amzn-trace-id: Root=1-6a024ad5-5751928613975fd94526fd27;Parent=553a7e8e1a11991a;Sampled=0;Lineage=1:640fac8a:0
x-cache: Miss from cloudfront
x-ratelimit-limit: 1000
x-ratelimit-remaining: 999
x-ratelimit-reset: 1778535185
x-returnless-version: 2023-01

Recommendations

Enable compression (gzip/brotli) to improve performance